package cn.tedu.boot21.controller;

import cn.tedu.boot21.utils.DBUtils;
import cn.tedu.boot21.vo.User;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.ResponseBody;

import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;

@Controller
public class UserController {

    @RequestMapping("/reg")
    @ResponseBody
    public String reg(User user) {
        System.out.println("user = " + user);
        try (Connection conn = DBUtils.getConn()) {
            String sql = "select id from user where username=?";
            PreparedStatement ps = conn.prepareStatement(sql);
            ps.setString(1, user.getUsername());
            ResultSet rs = ps.executeQuery();
            if (rs.next()) {
                return "用户名已经,请重新注册";
            }
            String insertSql = "insert into user values(null,?,?,?)";
            PreparedStatement insertPs = conn.prepareStatement(insertSql);
            insertPs.setString(1, user.getUsername());
            insertPs.setString(2, user.getPassword());
            insertPs.setString(3, user.getNick());
            insertPs.executeUpdate();
        } catch (SQLException e) {
            e.printStackTrace();
        }
        return "注册成功";
    }

    @RequestMapping("login")
    @ResponseBody
    public String login(User user) {
        System.out.println("user = " + user);
        try (Connection conn = DBUtils.getConn()) {
            String sql = "select password from user where username=?";
            PreparedStatement ps = conn.prepareStatement(sql);
            ps.setString(1, user.getUsername());
            ResultSet rs = ps.executeQuery();
            if (rs.next()) {
                String password = rs.getString(1);
                if (password.equals(user.getPassword())) {
                    return "登陆成功";
                } else {
                    return "密码错误";
                }
            }
        } catch (SQLException e) {
            e.printStackTrace();
        }
        return "用户名不正确";
    }
}
